NSA official says industry lags on security

NSA official says industry lags on security

By William Jackson

GCN Staff

APRIL 10—The government is getting inadequate help from industry in securing sensitive but unclassified data, a National Security Agency official said yesterday.

'For high assurance, we will continue to build our own,' said Brian D. Snow, technical director of NSA's Information Assurance Directorate.

'Shame on you,' Snow told an audience of industry representatives at the RSA Conference 2001 in San Francisco. 'You should be doing it better.'

Snow did not call for new security features but said existing ones in operating systems, applications and hardware should be better designed, tested and implemented.

'Through the coming five-year span I see little improvement in assurance, hence little true security,' he said.

Snow said NSA is not pushing for legislation to mandate security standards, but he thinks users might demand it if they suffer enough losses from software flaws.

'If I had to bet, I'd bet on legislation if the industry doesn't act,' he said.

NSA, which once shunned public exposure, now frequently takes part in public forums such as the RSA conference, sponsored by RSA Security Inc. of Bedford, Mass

Featured

  • Records management: Look beyond the NARA mandates

    Pandemic tests electronic records management

    Between the rush enable more virtual collaboration, stalled digitization of archived records and managing records that reside in datasets, records management executives are sorting through new challenges.

  • boy learning at home (Travelpixs/Shutterstock.com)

    Tucson’s community wireless bridges the digital divide

    The city built cell sites at government-owned facilities such as fire departments and libraries that were already connected to Tucson’s existing fiber backbone.

Stay Connected